We keep your code secure.
Clayton keeps your source code and data encrypted at all times, both in transit and at rest.
No access to CRM data
Clayton scans your code by plugging into your code repositories, not into your Salesforce org, only processing metadata and keeping your CRM data completely untouched.
Access to your repositories
Clayton connects to your version control system via APIs, using OAuth 2 as an authorisation system and without ever accessing or storing your passwords. You are always in control of access and permissions, and they can be revoked at any time.
Encryption in transit
All sessions and file transfers occur over HTTPS, using encrypted connections. Integrations with third-party systems, such as GitHub or Bitbucket, are established via APIs, and use encrypted connections at all times.
Encryption at rest
We access and process source code only from our code review workers, a part of our infrastructure that sits behind firewalls, where source code is encrypted at rest, and is kept only for the time strictly needed to serve your requests for code reviews as quickly as possible.